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Method and Apparatus for Ensuring Secure Distribution and 
Receipt, and Secure Authorized Exhibition of Digital Audiovisual 

Data 

Inventors: Michael Karagosian, Clyde McKinney 
Field of the Invention 

The present invention relates generally to secure data communication, and more 
specifically to secure distribution, receipt, and exhibition of digital audiovisual data. 

Background of the Invention 

Today, commercial exhibition of digital motion pictures is becoming increasingly 
widespread. A method for distributing digital motion picture data is described in United 
States Patent number 5,924,013 titled "Method and apparatus for transmitting motion 
picture cinematic information for viewing in movie theaters and ordering method therefor," 
issued to Guido, et al ("Cinematic Information Patent"). 

Prevention of theft of cinematic intellectual property is an important issue in the 
commercialization and distribution of electronic, digital cinema. As described in the 
cinematic information patent cited above, digital cinema requires distribution of movies in 
the form of digital data. Digital data is vulnerable to quick, inexpensive, and accurate 
duplication. However, the cinematic information patent cited above, and other prior art in 
the field of electronic, digital cinema does not provide a mechanism to prevent or hamper 
the theft of the digital movie data. 

One way to secure digital data is encryption. Many encryption techniques and 

algorithms are known, and can be used to encrypt digital movie data before it is distributed. 
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Distribution of encrypted movie data requires that a key to decrypt the data be obtained by a 
theater operator who wishes to exhibit the movie. To maintain a single inventory of movie 
data by the distribution company, it is desirable to encrypt all copies of a given movie title 
utilizing a single key. However, it is also desirable to ensure that only an individual, 
5 authorized exhibitor be able to decrypt and exhibit an individual distributed copy of a 

motion picture intended for that exhibitor. Existing encryption technology does not provide 
a way to encrypt multiple copies of data with a single key, and at the same time to ensure 
that each individual copy can be decrypted by only an individual intended recipient. 
Additionally, while encryption can protect electronic data from theft during 

1 0 distribution, it cannot prevent all forms of piracy. In order to exhibit a movie, the encrypted 
movie data must first be decrypted. Generally, encrypted data is decrypted on a secure 
computer system which enacts a decryption algorithm, and which stores a decryption key in 
memory. In the cinematic projection environment, the security of such computer systems 
and decryption keys is at risk. If theft of the digital data is possible, then it is equally likely 

15 that the computers and memory devices that are required to enact the security process are 
vulnerable to theft as well. Such a security system is thus vulnerable to theft because it can 
be stolen and used to exhibit the motion picture at another location and in circumvention of 
restrictions and constraints normally imposed upon the distribution and exhibition of the 
motion picture. 

20 Another problem with contemporary digital cinema is ensuring that a motion picture 

can only be exhibited during an authorized range of dates. With traditional film, the film 
print is returned to the distribution company after the movie exhibition dates have expired. 
In this manner, the distribution company maintains control over the whereabouts of the 
movie, preventing unauthorized exhibition and other forms of theft. With digital, electronic 

25 motion picture distribution, the data comprising the movie is normally not returned to the 
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distributor. Thus, techniques are required for ensuring that the movie data can only be 
played during a fixed, authorized range of dates. 

Even where a legitimate, authorized exhibition of the motion picture occurs, the data 
still remains vulnerable to theft. Currently movie piracy is commonly accomplished 
through such analog schemes as direct visual image and audio recording of the movie from 
within the cinema auditorium itself, and contemporary security mechanisms are incapable 
of tracing the origin of such theft. 

Thus improved techniques for safeguarding electronically distributed digital motion 
picture data are required to obviate movie piracy and the associated issues described above. 

Summary of the Invention 

In accordance with the present invention, efficient techniques are provided for 
ensuring secure distribution, receipt, and exhibition of digital audiovisual data. Encrypted 
digital movie data is provided by a movie distributor to at least one exhibitor. Because the 
data is encrypted, the distribution is secure. 

All distributed copies of a given movie title can be encrypted with the same key, 
thereby allowing single inventory of movie data by a distributor. In addition to digital 
movie data, a movie decryption key and exhibitor authorization data are distributed to each 
exhibitor. The key and authorization data are distributed separately from the movie data, 
and are preferably encrypted with a key that is unique to the intended exhibitor recipient. 
Unlike the movie data itself, the key and authorization data need not be singly inventoried 
by the distributor and thus do not require that all copies be encrypted with the same key. 

The exhibitor authorization data contains information uniquely identifying the 

exhibitor, as well as valid authorized dates for exhibition of the movie. Thus, each exhibitor 

3 
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receives unique authorization data for each received digital movie. In a preferred 
embodiment, the exhibitor identification information in the authorization data includes a 
unique exhibitor identification code, and a location of the exhibitor generated by a global 
positioning system. Alternatively, other data such as a projector serial number can be used 
as all or part of the identification information as desired. The authorization data is 
compared with local data provided by an exhibitor. In a preferred embodiment, local data 
comprises date, time, and location information provided by a global positioning system 
receiver. Only upon match up of the local data with the authorization data can the 
decryption and subsequent exhibition of the movie data occur. 

Thus, theft of the movie data, the decryption key, and the authorization data is not 
sufficient to decrypt and exhibit the movie, since local data must match the authorization 
data in order to decrypt and exhibit the movie. Although theft of an exhibitors computer 
system and projector remains possible, an attempt to exhibit the movie at another location 
will fail due to the mismatch between the authorization data and local data that includes 
global positioning data. Therefore, if a thief attempts an unauthorized exhibition of stolen 
movie data at another location, the local data will be absent or will not match the 
authorization data. Even if the thief is in possession of the exhibitor's projection equipment 
and global positioning system receiver, the location data generated by the global positioning 
system receiver will not match the location data of the authorized exhibitor. 

Additionally, the authorization data contains the range of authorized dates during 
which the movie may be exhibited, and the local data to be compared with the authorization 
data includes the date. Thus, the movie cannot be decrypted or exhibited outside of the 
range of authorized dates. 

Before the digital movie data is sent to the projection mechanism and the audio 
playback system, signature data is presented to a device analogous to a watermarking device 
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which encodes a unique signature into the visual image and audio signals. This signature is 
based upon information which uniquely identifies the exhibitor. In a preferred embodiment, 
the signature data is similar to the authorization data, and can include an exhibitor 
identification number, date, time, and location. The signature data can be recovered from 
illicitly copied material. Known methods can be used to create such a so-called watermark 
that can then be recovered from analog copies of data. Thus, the watermark provides a 
scheme for identifying the exhibition source of a pirated copy of a movie, even where the 
theft involves analog copying. 



Brief Description of the Drawings 

FIG. 1 is a flowchart illustrating the process of distributing digital audiovisual data 
to at least one exhibitor in accordance with one preferred embodiment of the present 
invention. 

FIG. 2 is a flowchart illustrating the process of receiving and exhibiting digital 
audiovisual data by an exhibitor in accordance with one preferred embodiment of the 
present invention. 

FIG. 3 is a block diagram illustrating a system utilized to ensure that an exhibitor is 
authorized to exhibit the digital audiovisual data in accordance with an embodiment of the 
present invention. 

FIG. 4 is a block diagram illustrating exhibitor identification data in accordance with 
one embodiment of the present invention. 



Detailed Description of the Invention 
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The present invention enables secure distribution, receipt, and exhibition of digital 
audiovisual data. The term " audiovisual" is used herein to mean "audio" or "visual." The 
digital audiovisual data is distributed by a distributor to at least one exhibitor. For security 
of distribution, the digital audiovisual data is encrypted. Each exhibitor securely receives 
5 the encrypted digital audiovisual data. The authorization of the exhibitor is verified, and 
only upon verification is an exhibitor allowed to decrypt and exhibit the digital audiovisual 
data. Prior to exhibition, the audiovisual data is encoded with unique data identifying the 
exhibitor. Unauthorized analog copies made from the exhibition of audiovisual data can be 
traced through the identifying data. 

10 The flowchart of FIG. 1 illustrates the process of distributing digital audiovisual data 

according to an embodiment of the present invention. A distributor encrypts 101 digital 
audiovisual data. Preferably, the digital audiovisual data comprises a motion picture, but 
the digital audiovisual data may also comprise television programs, visual image 
communication data, and the like, as desired. A known encryption method such as RSA, 

15 Skipjack, DES, Blowfish, or the like is utilized to encrypt 101 the digital audiovisual data. 
Preferably, every copy of a motion picture (or other audiovisual data in alternative 
embodiments) is encrypted 101 using a single key, to facilitate single inventory of the data 
by the distributor. In alternative embodiments, each copy of a motion picture may be 
encrypted with a separate, unique key. 

20 In a preferred embodiment of the present invention, the digital audiovisual data is 

encrypted in a conventional manner by computer software residing in memory of a 
computer system including a central processing unit. In alternative embodiments, the 
digital audiovisual data may be encrypted by hardware, firmware, or any combination of 
software, hardware and firmware, as desired. 
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Once the digital audiovisual data is encrypted, the distributor assembles 103 
exhibitor authorization data for each exhibitor who is to receive the digital audiovisual data. 
Exhibitor authorization data is used to verify that an exhibitor is authorized to receive and 
exhibit the digital audiovisual data, and is thus unique for each exhibitor. FIG. 4 illustrates 
5 exhibitor identification data 401 in one embodiment of the present invention. Exhibitor 
authorization data 401 for each exhibitor comprises exhibitor identification information 403, 
audiovisual data identification information 405, and valid dates of exhibition 407 of the 
audiovisual data. In alternative embodiments, the exhibitor authorization data 401 may also 
contain additional information, for example including distributor identification information. 

10 In other alternative embodiments, the exhibitor authorization data 401 may contain less 
information, for example, with valid dates of exhibition 407 omitted because the exhibitor 
purchased a license to exhibit the audiovisual data without date restrictions. 

Preferably, the exhibitor identification information 403 contained in the exhibitor 
authorization data 401 comprises location information of the exhibitor such as is generated 

15 by a global positioning system, and constitutes an authorized location for the exhibition of 
the digital audiovisual data. Alternatively, exhibitor identification information 403 may 
comprise other data such as a serial number of an exhibitor's digital movie projector or an 
assigned exhibitor identification code, as desired. 

Preferably, the exhibitor authorization data 401 may also be encrypted 105, or may 

20 be present in clear digitized text. In a preferred embodiment, the exhibitor authorization 
data 401 for each exhibitor is encrypted 105 utilizing a key unique to that exhibitor. 
Preferably, exhibitor authorization data 401 is distributed to a given exhibitor in encrypted 
form utilizing that exhibitor's public key of an encryption method such as RS A that requires 
a public key and a private key. A public and a private key for each exhibitor are preferably 

25 generated by the distributor. The public key is used to encrypt 105 exhibitor authorization 
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data '401, and' the private key is used, by the exhibitor, to decrypt the exhibitor authorization 
data 401 . Various secure channels may be utilized to distribute the private key to the 
exhibitor. Distribution of the private key is discussed in detail later in this specification. 

It should be noted that the above-described encryption of the exhibitor authorization 
5 data 401 may be modified in alternative embodiments to include public and private keys 
generated by each exhibitor rather than by the distributor, may be modified to include a 
single key to encrypt and decrypt the data, and may be modified to include a key that is not 
unique to the exhibitor. Alternatively, the exhibitor authorization data 401 is not encrypted 
at all, but instead may appear in clear digitized text, as desired. 

10 In a preferred embodiment, the key to decrypt the encrypted audiovisual data for 

each exhibitor is encrypted 107 utilizing a key unique to that exhibitor. Preferably, this is 
the same key used to encrypt 105 the exhibitor authorization data 401, as described above; 
The alternative embodiments described above for the encryption of the exhibitor £ 
authorization data 401 also apply to the encryption of the key to decrypt the audiovisual 

15 data. 

Next, the digital 1 audiovisual data, the key to decrypt the encrypted audiovisual data, 
and the exhibitor authorization data 401 are distributed to at least one exhibitor. Preferably, 
the digital audiovisual data is distributed 109 separately from the key to decrypt the digital 
audiovisual data, and from the exhibitor authorization data 401, over a secure 
20 communication channel, such as telephone, Internet, leased communication line, and the 
like. The distribution of the digital audiovisual data can be by transmission over such 
public channels as the Internet, telephone lines, fiber optic cable, satellite, or the like, as 
desired. Alternatively, the digital audiovisual data may be distributed on magnetic or 
optical media. 
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In one preferred embodiment of the present invention, the exhibitor authorization 
data 401 and the key to decrypt the encrypted audiovisual data are embedded 1 1 1 in a 
computer program to be distributed to an exhibitor. The computer program also contains 
program code to verify that an exhibitor is authorized to exhibit the audiovisual data, and 
5 program code to process the results of the verification. The operation of such computer 
program is described in detail later in this specification. For each exhibitor to receive the 
digital audiovisual data, a copy of the computer program is created containing the exhibitor 
authorization data 401 for that exhibitor, as well as the key to decrypt the digital audiovisual 
data. 

10 Next, the appropriate copy of the computer program is distributed 1 13 by 

conventional schemes to each exhibitor that receives the digital audiovisual data. As with 
the digital audiovisual data, the computer program is preferably distributed over a secure 
public channel such as the Internet, but can also be distributed on magnetic or optical media, 
as desired. 

15 In a preferred embodiment of the present invention, assembling the exhibitor 

authorization data 401, encrypting the exhibitor authorization data 401, encrypting the key 
to decrypt the digital audiovisual data, and embedding the exhibitor authorization data 401 
and the key to decrypt the encrypted audiovisual data in a copy of the computer program are 
performed by computer software residing in computer memory of a computer system with a 

20 central processing unit. In alternative embodiments, assembling the exhibitor authorization 
data 401, encrypting the exhibitor authorization data 401, encrypting the key to decrypt the 
digital audiovisual data, and embedding the exhibitor authorization data 401 and the key to 
decrypt the encrypted audiovisual data in a copy of the computer program are performed by 
hardware, firmware, or any combination of software, hardware, and firmware as desired. 
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* FIG. 2 is a flowchart illustrating the steps involved in receiving and exhibiting 
digital audiovisual data by an exhibitor in accordance with one embodiment of the present 
invention. In FIG. 2, an exhibitor receives 201 encrypted digital audiovisual data. 
Typically, the digital audiovisual data comprises a motion picture, but may also be other 
5 forms of digitized data as previously explained. Next, the exhibitor receives 203 exhibitor 
authorization data 401 and a key to decrypt the encrypted audiovisual data. In one preferred 
embodiment, the receipt of the digital audiovisual data is separate from the receipt of the 
exhibitor authorization data 401 and from the key to decrypt the encrypted audiovisual data. 
Preferably, the exhibitor authorization data 401 and key to decrypt the encrypted 
10 audiovisual data are embedded in a computer program which is received 203 from the tt 
distributor, 

; Prior to decrypting the digital audiovisual data and allowing exhibition thereof, the 
exhibitor must be verified to have present authorization to exhibit the digital audiovisual < 
data. FIG. 3 illustrates one system utilized for verification of this authorization and 

15 subsequent exhibition of digital audiovisual data in accordance with one embodiment of the 
present invention. A computer system 301 contains a central processing unit 303, computer 
memory 305, and storage device 307 such as at least one magnetic disk or at least one 
writeable optical disk. Data is received via at least one input mechanism 309 such as 
modem, cable, network card, satellite receiver, floppy disk drive, and the like, and is 

20 transmitted to audiovisual data exhibition hardware via an output mechanism 311. In one 
preferred embodiment, the audiovisual data exhibition hardware comprises a digital 
projector 313 and an audio playback system 315. The computer system 301, digital 
projector 313 and audio playback system 315 can all be components of a single physical 
device, or can be separate, physically discrete devices as desired. Separate hardware 

25 components of these types are required to be physically or logically connected, for example 

10 
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by a local area computer network, by telephone lines, or by a wireless, electromagnetic* 
radiation-based communication system. In one embodiment, the computer system 301 is a 
component of the digital projector 3 1 3 . 

Referring again to FIG. 2 and FIG. 3, the computer program 3 1 7 is loaded into the 
computer memory 305 of the computer system 301 via an input mechanism 309. The 
computer program 317 is then executed 205 by the central processing unit 303 of the 
computer system 301 to retrieve 207 exhibitor identification data 319 that uniquely 
identifies the exhibitor. Preferably, the exhibitor identification data 319 comprises a 
location of the exhibitor and a current date. This information is, preferably provided by a 
global positioning system (GPS) receiver 321 coupled to the computer system 301 . 
Alternatively, the exhibitor identification data 319 comprises other information such as a 
digital projector serial number or an assigned exhibitor identification code, as desired. 

Next, the computer program 317 verifies that the exhibitor is authorized to exhibit 
the digital audiovisual data 327 at a current date within a range of dates. ; Where, the 
exhibitor authorization data 401 is encrypted, as in one preferred embodiment, the computer 
program 317 must decrypt 209 it in order to proceed. To do so, the computer program 317 
preferably accesses the private key 325 of the exhibitor. As explained above, the private 
key 325 is preferably unique to the exhibitor, and is supplied by the distributor. In a 
preferred embodiment of the present invention, the private key 325 is distributed to the 
exhibitor on physical media, such a floppy disk or CD-ROM. Alternatively, the private key 
325 can be distributed over a secure transmission channel such as the Internet, or the like, as 
desired. In one embodiment, the private key 325 is stored by the distributor, and accessed 
by the exhibitor as needed. In such an embodiment, the identification of the exhibitor is 
verified prior to allowing access of the private key 325. In every embodiment that includes 
a private key 325, a new private key 325 is generated from time to time and made available 

11 
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to the exhibitor. In an alternative embodiment, the public and private key combination is 
generated by the exhibitor instead of by the distributor. In that embodiment, the public key 
is made available to the distributor and used for the encryption. The private key 325, held 
by the exhibitor, is then used for the decryption. 
5 Once the exhibitor authorization data 401 has been decrypted 209, the computer 

program 317 proceeds to verify that the exhibitor is authorized to exhibit the digital 
audiovisual data 327. To do so the computer program 317 first compares 21 1 the exhibitor 
authorization data 401 to the exhibitor identification data 319. Preferably an authorized 
location for the exhibition of the digital audiovisual data 327 in the exhibitor authorization *■ 

10 data 401 provided by the distributor is compared 21 1 with the location of the exhibitor v - 
contained in the exhibitor identification data 319. As explained above, the location of the 
exhibitor contained in the exhibitor identification data 3 19 is preferably provided by a GPS^ 
receiver 32 1 . Because the location of the authorized exhibitor is known to the distributor * 
and is included in the exhibitor authorization data 323, the location of the exhibitor provided 

15 by the GPS receiver 321 can be used to verify the authorization of the exhibitor. Even if the 
digital audiovisual data 327, projection equipment 313, and GPS receiver 321 are stolen, the 
digital audiovisual data 327 will still be secure. The authorization check performed prior to 
exhibition will fail at least because the stolen and relocated GPS receiver 321 will report a 
different location from that provided by the distributor. The comparison of GPS location 

20 data is performed with moderate precision and not finite precision, so that movement of the 
GPS receiver 321 or antenna within an exhibitor's site does not result in a verification 
failure. In alternative embodiments, data other than location is used to verify the identity of 
the exhibitor such as a serial number of the projection equipment 313, or a password, or the 
like. 
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Once the identity of the exhibitor has been confirmed, the current date -is verified 
213 against the range of dates during which the exhibitor is authorized to exhibit the digital 
audiovisual data 327. As explained above, this range of dates is preferably included in the 
exhibitor authorization data 323. The current date is preferably provided by the GPS 
5 receiver 32 1 . Alternatively, the current date is provided by the operating system of the 
computer system 301 . Either way, the computer program 307 verifies 213 that the current 
date is within the authorized range. 

If the identity of the exhibitor and the date are successfully verified, the exhibition of 
the digital audiovisual data 327 is allowed to proceed. However, if either the identity of the 

10 exhibitor, or the authorization to exhibit on the current date is not confirmed, the computer 
program 3 1 7 does not decrypt the digital audiovisual data 327, which therefore cannot be 
exhibited 215. Preferably, the computer program 317 erases the digital audiovisual data 327 
and decryption key. Preferably the computer program 3 1 7 transmits a control signal to the 
distributor indicating that an attempt is occurring to execute an unauthorized exhibition of 

1 5 the digital audiovisual data 327 at a given location. Then, the computer program 3 1 7 
terminates. 

If the identity of the exhibitor and the date are successfully verified, the computer 
program 317 proceeds to decrypt 217 the key 325 needed to decrypt the digital audiovisual 
data 327. This key 325 is preferably encrypted with the same key as the exhibitor 
20 authorization data, and is decrypted in the same manner, as described above. Once the key 
325 to decrypt the digital audiovisual has been decrypted, the digital audiovisual data 327 is 
then decrypted 219 by the computer program 317. At this point, the audiovisual data is 
ready to be watermarked prior to exhibition. 

The use of the computer program 317 as described above represents one mode of 
25 practicing the present invention, in alternative embodiments of the present invention, there 

13 
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is no computer program 317, and the exhibitor authorization data 401 and key 325 to 
decrypt the digital audiovisual data 327 are received by themselves. In such embodiments, 
the exhibitor authorization data 401 and key 325 to decrypt the digital audiovisual data 327 
are loaded into the computer memory 305 of the computer system 301 at the exhibitor site. 
Then, all of the steps that are performed by the computer program 3 1 7 in the embodiment 
described above are instead performed by software (or, in other embodiments by hardware, 
firmware, or any combination of software, hardware, and firmware as desired) which 
comprises a component of the exhibitor's computer system 301 . 

To enable tracking of theft in the form of analog copying of the exhibition of the r. 
audiovisual data, the audiovisual data is watermarked 221 with unique identifying data prior 
to exhibition. The identifying data can be provided by a date and time clock, or a memory 
device containing unique data stored by the projector manufacturer, or a memory device 
containing unique data stored by the exhibitor, or unique signature data provided through a? 
local-area network (LAN), or the GPS receiver 321 . Preferably the identifying data 
comprises the location and date information provided by the GPS receiver 321. 

The present invention is not dependent upon the choice of watermarking technology 
used to encode the identifying information in the visual image and audio signal. Various 
known watermarking technologies that are currently commercially available can be utilized 
as desired to watermark 221 both visual image and audio signals, or alternatively to 
watermark 221 only the audio signal or only the visual image signal. Watermarking 
technology, by its nature, imprints the data with the watermarking information which can 
facilitate the recovery of the encoded identifying data, and thus aid in the identification of 
an analog theft. Once the data is watermarked 221 , it can be exhibited 223. 
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What is claimed is: * 

1 LA method for ensuring secure receipt and secure, authorized exhibition of digital 

2 audiovisual data by an exhibitor,, the method comprising: 

3 receiving encrypted digital audiovisual data; 

4 receiving exhibitor authorization data that uniquely identifies the exhibitor; 

5 receiving a key to decrypt encrypted digital audiovisual data; 

6 retrieving exhibitor identification data that uniquely identifies the exhibitor; 

7 verifying that the exhibitor is authorized to exhibit the digital audiovisual 

8 data by comparing the received exhibitor authorization data to the 

9 retrieved exhibitor identification data; 

10 only in response to verification of the exhibitor's authorization to exhibit the 

1 1 digital audiovisual data, decrypting the encrypted digital audiovisual 

12 data; and 

13 only in response to verification of the exhibitor's authorization to exhibit the 

14 digital audiovisual data, allowing exhibition of the audiovisual data 

15 by the exhibitor. 

1 2. The method of claim 1 wherein the received key to decrypt the digital 

2 audiovisual data is itself encrypted and the method further comprises: 

3 decrypting the received key to decrypt the digital audiovisual data. 

1 3. The method of claim 2 further comprising: 

2 decrypting the received key to decrypt the digital audiovisual data with a key 

3 unique to the exhibitor. 
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1 4. The method of claim 1 wherein the received exhibitor authorization data is 

2 encrypted and the method further comprises: 

3 decrypting the received exhibitor authorization data. 

1 5. The method of claim 4 further comprising: 

2 decrypting the received exhibitor authorization data with a key unique to the 

3 exhibitor. 

1 6. The method of claim 1 wherein the received exhibitor authorization data includes 

2 a range of dates during which the exhibitor is authorized to exhibit the digital audiovisual 

3 data, and the method further comprises: 

4 comparing a current date to the range of authorized exhibition dates in the 

5 received exhibitor authorization data; 

6 only in response to the current date being within the range of authorized 

7 exhibition dates, decrypting the digital audiovisual data; and 

8 only in response to the current date being within the range of authorized 

9 exhibition dates, allowing exhibition of the audiovisual data by the 
10 exhibitor. 

1 7. The method of claim 1 wherein the received exhibitor authorization data includes 

2 a location at which the exhibitor is authorized to exhibit the digital audiovisual data, and the 

3 method further comprises: 

4 comparing a current location to the location for authorized exhibition in the 

5 received exhibitor authorization data; 
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6 only in response to the current location being the authorized exhibition 

7 location, decrypting the digital audiovisual data; and 

8 only in response to the current location being the authorized exhibition 

9 location, allowing exhibition of the digital audiovisual data by the 
10 exhibitor. 

1 8. The method of claim 7 wherein the current location is provided by a global 

2 positioning system receiver. 

1 9. The method of claim 1 wherein the exhibitor authorization data and the key to 

2 decrypt the digital audiovisual data are embedded in a computer program, and the method 

3 further comprises: 

4 receiving the computer program in which the exhibitor authorization data 

5 and the key to decrypt the digital audiovisual data are embedded; 

6 executing the computer program; and 

7 verifying, by the computer program, that the exhibitor is authorized to 

8 exhibit the digital audiovisual data by comparing the received 

9 exhibitor authorization data to the retrieved exhibitor identification 
10 data. 

1 10. The method of claim 9 further comprising: 

2 in response to verification of the exhibitor's authorization to exhibit the 

3 digital audiovisual data, decrypting, by the computer program, the 

4 encrypted digital audiovisual data. 

1 11. The method of claim 9 further comprising: 
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2 • -in response to failure of verification of the exhibitor's authorization to exhibit 

3 the digital audiovisual data, prohibiting decryption of the encrypted 

4 digital audiovisual data by the computer program. 

1 12. The method of claim 9 further comprising: 

2 in response to failure of verification of the exhibitor's authorization to exhibit 

3 the digital audiovisual data, prohibiting exhibition of audiovisual data 

4 by the computer program. 

1 13. The method of claim 12 further comprising: 

2 in response to failure of verification of the exhibitor's authorization to exhibit 

3 the digital audiovisual data, deleting the digital audiovisual data by 

4 the computer program. 

1 14. The method of claim 9 further comprising: 

2 in response to failure of verification of the exhibitor's authorization to exhibit 

3 the digital audiovisual data, transmitting to the distributor, by the 

4 computer program, a control signal indicating that an unauthorized 

5 exhibition is being attempted. 

1 15. The method of claim 1 further comprising: 

2 prior to exhibiting the digital audiovisual data, including identifying data 

3 within the audiovisual data, the identifying data uniquely identifying 

4 the exhibitor. 

1 16. The method of claim 15 wherein the identifying data is included only within the 

2 visual image portion of the data. 
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1 17. The method of claim 1 5 wherein the identifying data is included only within the 

2 audio portion of the data. 

1 18. The method of claim 1 wherein the receipt of the encrypted digital audiovisual 

2 data is separate from the receipt of the exhibitor authorization data and from the key to 

3 decrypt the encrypted digital audiovisual data. 

1 19. The method of claim 1 further comprising: 

2 in response to failure of verification of the exhibitor's authorization to exhibit 

3 the digital audiovisual data, prohibiting exhibition of audiovisual 

4 data. 

1 20. The method of claim 19 further comprising: 

2 in response to failure of verification of the exhibitor's authorization to exhibit 

3 the digital audiovisual data, deleting the digital audiovisual data. 

1 21. A method for securely distributing digital audiovisual data to at least one 

2 exhibitor, ensuring only authorized exhibition of the digital audiovisual data, the method 

3 comprising: 

4 encrypting digital audiovisual data; 

5 distributing the encrypted digital audiovisual data to at least one exhibitor; 

6 distributing a key to decrypt the encrypted digital audiovisual data to at least 

7 one exhibitor; 

8 for each exhibitor to receive the audiovisual data, assembling exhibitor 

9 authorization data unique to that exhibitor; and 

10 distributing exhibitor authorization data to at least one exhibitor. 
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1 22. The method of claim 21 further comprising: 

2 embedding the decryption key and the exhibitor authorization data in a 

3 computer program; 

4 including in the computer program code for verifying that an exhibitor is 

5 authorized to exhibit the digital audiovisual data; and 

6 distributing the computer program to at least one exhibitor. 

1 23. The method of claim of 21 wherein the exhibitor authorization data includes an 

2 authorized location for the exhibition of the digital audiovisual data. 

1 24. The method of claim of 21 wherein the digital audiovisual data is encrypted 

2 using a single key and distributed to at least two exhibitors. 

1 25. The method of claim of 21 further comprising: 

2 prior to distributing the key to decrypt the encrypted digital audiovisual data, 

3 for each exhibitor to receive the audiovisual data, encrypting the key 

4 to decrypt the encrypted digital audiovisual data with a key unique to 

5 that exhibitor. 

1 26. The method of claim of 21 further comprising: 

2 prior to distributing exhibitor authorization data, for each exhibitor to receive 

3 the audiovisual data, encrypting the exhibitor authorization data with 

4 a key unique to that exhibitor. 
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1 27. The method of claim of 21 wherein the distribution of the encrypted digital 

2 audiovisual data is separate from the distribution of the key to decrypt the encrypted digital 

3 audiovisual data and from the exhibitor authorization data. 

1 28. A computer program product on a computer readable medium for ensuring 

2 secure receipt and secure, authorized exhibition of digital audiovisual data by an exhibitor, 

3 the computer program product comprising: 

4 program code for receiving encrypted digital audiovisual data; 

5 program code for receiving exhibitor authorization data that uniquely 

6 identifies the exhibitor; 

7 program code for receiving a key to decrypt encrypted digital audiovisual 

8 data; 

9 program code for retrieving exhibitor identification data that uniquely 

10 identifies the exhibitor; 

1 1 program code for verifying that the exhibitor is authorized to exhibit the 

12 digital audiovisual data by comparing the received exhibitor 

13 authorization data to the retrieved exhibitor identification data; 

14 program code for, only in response to verification of the exhibitor's 

15 authorization to exhibit the digital audiovisual data, decrypting the 

16 encrypted digital audiovisual data; and 

1 7 program code for, only in response to verification of the exhibitor's 

18 authorization to exhibit the digital audiovisual data, allowing 

19 exhibition of the audiovisual data by the exhibitor. 
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1 29. The computer program product of claim 28 wherein the received exhibitor 

2 authorization data includes a range of dates during which the exhibitor is authorized to 

3 exhibit the digital audiovisual data, and the computer program product further comprises: 

4 program code for comparing a current date to the range of authorized 

5 exhibition dates in the received exhibitor authorization data; 

6 program code for, only in response to the current date being within the range 

7 of authorized exhibition dates, decrypting the digital audiovisual data; 

8 and 

9 program code for, only in response to the current date being within the range 

10 of authorized exhibition dates, allowing exhibition of the audiovisual 

1 1 data by the exhibitor. 

1 30. The computer program product of claim 28 wherein the received exhibitor v 

2 authorization data includes a location at which the exhibitor is authorized to exhibit the 

3 digital audiovisual data, and the computer program product further comprises: 

4 program code for comparing a current location to the location for authorized 

5 exhibition in the received exhibitor authorization data; 

6 program code for, only in response to the current location being the 

7 authorized exhibition location, decrypting the digital audiovisual 

8 data; and 

9 program code for, only in response to the current location being the 

10 authorized exhibition location, allowing exhibition of the digital 

1 1 audiovisual data by the exhibitor. 
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31. The computer program product of claim 28 further comprising: 
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2 program code for, prior to exhibiting the digital audiovisual data, including 

3 identifying data within the audiovisual data, the identifying data 

4 uniquely identifying the exhibitor. 

1 32. The computer program product of claim 3 1 further comprising program code for 

2 including identifying data only within the visual image portion of the data. 

1 33. The computer program product of claim 3 1 further comprising program code for 

2 including identifying data only within the audio portion of the data. 



1 34. The computer program product of claim 28 further comprising: 

2 program code for, in response to failure of verification of the exhibitor's 

3 authorization to exhibit the digital audiovisual data, prohibiting 

4 exhibition of audiovisual data. 

1 35. The computer program product of claim 34 further comprising: 

2 program code for, in response to failure of verification of the exhibitor's 

3 authorization to exhibit the digital audiovisual data, deleting the 

4 digital audiovisual data. 

1 36. The computer program product of claim 28 further comprising: 

2 program code for, in response to failure of verification of the exhibitor's 

3 authorization to exhibit the digital audiovisual data, prohibiting 

4 decryption of the encrypted digital audiovisual data by the computer 

5 program. 
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37. The computer program product of claim 28 further comprising: 
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2 • ; • program code for, in response to failure of verification of the exhibitor's 

3 authorization to exhibit the digital audiovisual data, transmitting to 

4 the distributor, by the computer program, a control signal indicating 

5 that an unauthorized exhibition is being attempted. 

1 38. A computer program product on a computer readable medium for securely 

2 distributing digital audiovisual data to at least one exhibitor, ensuring only authorized 

3 exhibition of the digital audiovisual data, the computer program product comprising: 

4 program code for encrypting digital audiovisual data; 

5 program code for distributing the encrypted digital audiovisual data to at 

6 least one exhibitor; 

7 program code for distributing a key to decrypt the encrypted digital 

8 audiovisual data to at least one exhibitor; 

9 program code for assembling, for each exhibitor to receive the audiovisual 

10 data, exhibitor authorization data unique to that exhibitor; and 

1 1 program code for distributing exhibitor authorization data to at least one 

12 exhibitor. 

1 39. A method for securely distributing and receiving digital audiovisual data, 

2 ensuring only authorized exhibition of the digital audiovisual data, the method comprising: 

3 encrypting digital audiovisual data; 

4 distributing the encrypted digital audiovisual data to at least one exhibitor; 

5 distributing a key to decrypt the encrypted digital audiovisual data to at least 

6 one exhibitor; 

7 for each exhibitor to receive the audiovisual data, assembling exhibitor 

8 authorization data unique to that exhibitor; 
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9 distributing exhibitor authorization data to at least one exhibitor; 

1 0 receiving encrypted digital audiovisual data by at least one exhibitor; 

1 1 receiving unique exhibitor authorization data by at least one exhibitor; 

12 receiving a key to decrypt encrypted digital audiovisual data by at least one 

13 exhibitor; 

14 retrieving unique exhibitor identification data; 

15 verifying that the exhibitor is authorized to exhibit the digital audiovisual 

16 data by comparing the received exhibitor authorization data to the 

1 7 retrieved exhibitor identification data; 

1 8 only in response to verification of the exhibitor's authorization to exhibit the 

1 9 digital audiovisual data, decrypting the encrypted digital audiovisual 

20 data; and 

21 only in response to verification of the exhibitor's authorization to exhibit the 

22 digital audiovisual data, allowing exhibition of the audiovisual data 

23 by the exhibitor. 

1 40. An apparatus for ensuring secure receipt and secure, authorized exhibition of 

2 digital audiovisual data by an exhibitor, the apparatus comprising: 

3 a computer system having a central processing unit, memory, at least one 

4 input, at least one output, and storage, for processing input and 

5 output, and for ensuring secure receipt and exhibition of digital 

6 audiovisual data; 

7 in the memory of the computer system, a reception module, for receiving 

8 encrypted digital audiovisual data, for receiving unique exhibitor 
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authorization data, and for receiving a key to decrypt the encrypted 
digital audiovisual data; 
in the memory of the computer system, a retrieval module, for retrieving 

unique exhibitor identification data; 
in the memory of the computer system and coupled to the reception module 
and to the retrieval module, a verification and comparison module, 
for verifying that the exhibitor is authorized to exhibit the digital 
audiovisual data by comparing the received exhibitor authorization 
data to the retrieved exhibitor identification data; 
in the memory of the computer system and coupled to the verification and 
comparison module, a decryption module for, only in response to 
verification of the exhibitor's authorization to exhibit the digital 
audiovisual data, decrypting the encrypted digital audiovisual data; 
and 

coupled to the computer system, a visual image exhibition module, for 
exhibiting an visual image portion of audiovisual data; 

coupled to the computer system, an audio playback module, for playing back 
an audio portion of audiovisual data; and 

in the memory of the computer system and coupled to the verification and 
comparison module, an output module for, only in response to 
verification of the exhibitor's authorization to exhibit the digital 
audiovisual data, outputting the audiovisual data to the visual image 
exhibition module and to the audio playback module. 

The apparatus of claim 40 further comprising: 
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2 a global positioning system receiver, coupled to the retrieval module, for 

3 providing current location data as exhibitor identification 

4 information. 

1 42. The apparatus of claim 40 further comprising: 

2 a watermarking module, coupled to the computer system, for embedding data 

3 uniquely identifying the exhibitor within the audiovisual data. 

1 43. A memory for storing data for access by an application program being executed 

2 on a computer system, the memory containing: 

3 exhibitor identification information uniquely identifying an individual 

4 exhibitor; 

5 digital audiovisual data identification information uniquely identifying 

6 specific digital audiovisual data; and 

7 a range of dates during which the individual exhibitor is authorized to exhibit 

8 the audiovisual data. 

1 44. The memory of claim 43 wherein the exhibitor identification information 

2 comprises location information of the individual exhibitor. 
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